Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.

Dismiss

Agents authentication issue

1,097 views

Skip to first unread message

Sirio

unread,

Apr 19, 2010, 3:31:01 AM4/19/10

Hi all,

agents (AD integration) in domain A could not be authenticated on SCOM MS in
domain B throught firewall but with a forest trust. It's possible the agent
can connect without directly connection to the Config Service (RMS) and
without SCOM GW.

Look up this communication plan.

http://www.pic-upload.de/view-5316216/15.04.png.html

Error on SCOM MS

Log Name: Operations Manager

Source: OpsMgr Connector

Date: 15.04.2010 10:06:16

Event ID: 20002

Task Category: None

Level: Error

Keywords: Classic

User: N/A

Computer: Server

Description:

A device at IP 195.x.x.:1859 attempted to connect but could not be
authenticated, and was rejected.

Error on Agent

Log Name: Operations Manager

Source: OpsMgr Connector

Date: 15.04.2010 14:37:12

Event ID: 20070

Task Category: None

Level: Error

Keywords: Classic

User: N/A

Computer: Server

Description:

The OpsMgr Connector connected to Server, but the connection was closed
immediately after authentication occurred. The most likely cause of this
error is that the agent is not authorized to communicate with the server, or
the server has not received configuration. Check the event log on the server
for the presence of 20000 events, indicating that agents which are not
approved are attempting to connect.

Thanks

Vik

unread,

May 10, 2010, 1:50:15 AM5/10/10

Yes, you need to use certificates in that case. Those errors are normal -
because the agent can find the Management Group and the Server however
cannot authenticate.

Use the following link to setup certificates.
http://technet.microsoft.com/en-us/library/bb735408.aspx

BTW - how many clients do we have in Domain A?

--
Regards,
Vikramjit Singh (VIk)

"Sirio" <Si...@discussions.microsoft.com> wrote in message
news:CC08810C-9CF1-49E7...@microsoft.com...

Murad Akram

unread,

May 24, 2010, 10:26:01 AM5/24/10

Serio,
Looks like your agent in communicating with your RMS or MS server, but it's
getting rejected because your Management Group doesn't know anything about
this agent. Did you go thorugh the "Administration node" and actually
accepted this agent into your Management Group? If not, please do so by going
to SCOM console, Administration node, and under "Pending Management" check to
see if you have this device/agent showed up under "Manual Agent Install"
section. If it's there right click and select approve.
--
Murad Akram

0 new messages